[Apollo] Advisories Statistics light light Login

RLSA-2026:27354

Security Mirrored from RHSA-2026:27354
Issued at: 2026-06-22
Updated at: 2026-06-22

Synopsis

Important: kernel-rt security, bug fix, and enhancement update



Description

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

* kernel: Linux kernel: Use-after-free in bonding driver leads to denial of service (CVE-2026-31419)

* kernel: drm/amd/display: Do not skip unrelated mode changes in DSC validation (CVE-2026-31488)

* kernel: net: mana: fix use-after-free in add_adev() error path (CVE-2026-43056)

* kernel: ALSA: usb-audio: Add sanity check for OOB writes at silencing (CVE-2026-43279)

* kernel: net/sched: act_pedit: extend the writable skb range per key (CVE-2026-46331)

* kernel: ALSA: aloop: Fix peer runtime UAF during format-change stop (CVE-2026-46090)

* kernel: RDMA/mana: Validate rx_hash_key_len (CVE-2026-46145)

* kernel: nvmet-tcp: fix race between ICReq handling and queue teardown (CVE-2026-46135)

Bug Fix(es) and Enhancement(s):

* Rocky Linux8 RT kernel panic in replenish_dl_entity() caused by stale DEADLINE PI state during rt_mutex de-boosting (JIRA:Rocky Linux-178520)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.



Affected products

Rocky Linux 8 x86_64

Fixes

2457829 2460619 2464449 2467215 2479492 2481980 2482581 2482654

CVEs

CVE-2026-31419 CVE-2026-31488 CVE-2026-43056 CVE-2026-43279 CVE-2026-46090 CVE-2026-46135 CVE-2026-46145 CVE-2026-46331

Affected packages

Rocky Linux 8 x86_64 - NFV

kernel-rt-0:4.18.0-553.136.1.rt7.477.el8_10.src.rpm kernel-rt-0:4.18.0-553.136.1.rt7.477.el8_10.x86_64.rpm kernel-rt-core-0:4.18.0-553.136.1.rt7.477.el8_10.x86_64.rpm kernel-rt-debug-0:4.18.0-553.136.1.rt7.477.el8_10.x86_64.rpm kernel-rt-debug-core-0:4.18.0-553.136.1.rt7.477.el8_10.x86_64.rpm kernel-rt-debug-debuginfo-0:4.18.0-553.136.1.rt7.477.el8_10.x86_64.rpm kernel-rt-debug-devel-0:4.18.0-553.136.1.rt7.477.el8_10.x86_64.rpm kernel-rt-debuginfo-0:4.18.0-553.136.1.rt7.477.el8_10.x86_64.rpm kernel-rt-debuginfo-common-x86_64-0:4.18.0-553.136.1.rt7.477.el8_10.x86_64.rpm kernel-rt-debug-kvm-0:4.18.0-553.136.1.rt7.477.el8_10.x86_64.rpm kernel-rt-debug-modules-0:4.18.0-553.136.1.rt7.477.el8_10.x86_64.rpm kernel-rt-debug-modules-extra-0:4.18.0-553.136.1.rt7.477.el8_10.x86_64.rpm kernel-rt-devel-0:4.18.0-553.136.1.rt7.477.el8_10.x86_64.rpm kernel-rt-kvm-0:4.18.0-553.136.1.rt7.477.el8_10.x86_64.rpm kernel-rt-modules-0:4.18.0-553.136.1.rt7.477.el8_10.x86_64.rpm kernel-rt-modules-extra-0:4.18.0-553.136.1.rt7.477.el8_10.x86_64.rpm

Rocky Linux 8 x86_64 - RT

kernel-rt-0:4.18.0-553.136.1.rt7.477.el8_10.src.rpm kernel-rt-0:4.18.0-553.136.1.rt7.477.el8_10.x86_64.rpm kernel-rt-core-0:4.18.0-553.136.1.rt7.477.el8_10.x86_64.rpm kernel-rt-debug-0:4.18.0-553.136.1.rt7.477.el8_10.x86_64.rpm kernel-rt-debug-core-0:4.18.0-553.136.1.rt7.477.el8_10.x86_64.rpm kernel-rt-debug-debuginfo-0:4.18.0-553.136.1.rt7.477.el8_10.x86_64.rpm kernel-rt-debug-devel-0:4.18.0-553.136.1.rt7.477.el8_10.x86_64.rpm kernel-rt-debuginfo-0:4.18.0-553.136.1.rt7.477.el8_10.x86_64.rpm kernel-rt-debuginfo-common-x86_64-0:4.18.0-553.136.1.rt7.477.el8_10.x86_64.rpm kernel-rt-debug-modules-0:4.18.0-553.136.1.rt7.477.el8_10.x86_64.rpm kernel-rt-debug-modules-extra-0:4.18.0-553.136.1.rt7.477.el8_10.x86_64.rpm kernel-rt-devel-0:4.18.0-553.136.1.rt7.477.el8_10.x86_64.rpm kernel-rt-kvm-0:4.18.0-553.136.1.rt7.477.el8_10.x86_64.rpm kernel-rt-modules-0:4.18.0-553.136.1.rt7.477.el8_10.x86_64.rpm kernel-rt-modules-extra-0:4.18.0-553.136.1.rt7.477.el8_10.x86_64.rpm